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In the claims: 




1/ A method comprising: 



verifying a use of a digital credential by a user of a 
digital credential, at/ any of a plurality of different locations 



where the digital credential can be used; e»*4 



storing a result 
a central location 



that 



of different locations 



allowing specified users to access Baid result, 



2. (Original) Th 
storing transaction i 



e method of claim 1 further including 
information in the activity log. 



3. (Original) Th 
transaction informatic 
was signed using a dig 
credential , a value of 
internet protocol (IP) 
time of the transactioh 



The 



4. (Original) 
generating an activity 
activity report lists 



of the verification in an activity log in 
communicates with each of said plurality 



; and 



e method of claim 2, wherein the 
n includes at least one of a message that 
ital signature key of the digital 
a transaction, an online service, an 
address, a date of the transaction and a 



method of claim 1 further including 
report from the activity log, wherein the 
■:he stored verification results. 
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5. (Original) The method of claim 4 further including 
associating a name to a digital signature key of the/ digital 
credential, wherein the activity report lists th^name of the 
digital signature key. 

6_ (Original) The method of claim 4^ wherein generating 
the activity report includes generating the activity report upon 
request by an owner of the digital credential. 

7. (Original) The method /of claim 4, wherein generating 
the activity report includes/generating the activity report each 
time the digital credential is verified. 

8. (Original) The method of claim 4, wherein generating 
the activity report/includes generating a report periodically. 

9. (Original) The method of claim 1 further including 
analyzing th^ activity log to detect misuse of the digital 
credential . 



. (Original) The method of claim 6, wherein generating 
the Activity report includes listing activity for a plurality of 
digital signature keys associated with the owner. 
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11. (Original) The method of claim 1 further compri/sing: 
authorizing one or more delegates to use a delegated (digital 
credential to act on behalf of the owner of the digital 
credential for specified functions, wherein verifying the use of 
the digital credential includes determining whether the 
delegated digital credential was authorized /or the specific 
use . 




12. (Currently amended) The method of claim 4, wherein 
generating an activity report includes activity reports of the 
delegates of the user and whereir/ said allowing comprises 
allowing said user to view all /reports, but allowing each said 
delegate to view only their gfan activity report, and not 
allowing each said delegate to view reports for other delegates . 

13. (Currently amended) An article comprising a computer- 
readable medium havi/rig computer- executable instructions stored 
thereon for causirig a computer to: 

verifying a use/of a digital credential by a user of a digital 
credential at/ any of a plurality of different locations where 
the digital/credential can be used ; and 

storing a result of the verification in an activity log in 
a central location that communicates with each of said plurality 
of different locations; and 
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allowing specif ied users to access said result . 

14. (Original) The article of claim 13, wherein the 
computer-executable instructions cause the computer to store 
transaction information in activity log. 





15- (Original) The article of claim ^4, wherein the 
transaction information includes at lea^t one of a message that 
was signed using a digital signature Jtey of the digital 
credential, a transaction value, an/online service processing 
the transaction, an internet proLocol (IP) address of a 
computing device originating th6 transaction, the date of the 
transaction and the time of tile transaction- 

16. (Original) The ajfticle of claim 13, wherein the 
computer-executable instructions cause the computer to generate 
an activity report frofa the activity log, wherein the activity 
report lists the stored verification results. 



17. (Original) The article of claim 16 and further 
including associating a name to a digital signature key of the 
digital credential, wherein the activity report lists the name 
of the digital signature key. 
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18. (Currently amended) The article of claim 16, wherein 
the computer-executable instructions cause the computer yto 
generate the activity report upon receiving a request A>y an 
owner of the digital credential , periodically, or - vd 4 en the 
digital — credential ia verified and wherein said flowing 
comprises allowing said user to view all reportfe, but allowing 
each said delegate to view only their own activity report, and 
not allowing each said delegate to view reports for other 
y delegates . 



19. (Original) The article of cYaim 13, wherein the 
computer-executable instructions cafuse the computer to analyze 
the activity log to detect misuser of the digital credential. 

20. (Original) The article of claim 17, wherein the 
computer-executable instructions cause the computer to list in 
the activity report activity for a plurality of digital 
signature . keys associated with the owner according to the name 
of the digital signature key. 



21. (Original^) The article of claim 20, wherein the 
computer-executable instructions cause the computer to authorize 
one or more delegates to use a delegated digital credential to 
act on behalf of the owner of the digital credential for 
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specified functions and determine whether the delegated dicfltal 
credential was authorized for the specific use. 

22. (Original) The article of claim 21, wherein/the 
computer- executable instructions cause the compute^r to generate 
activity reports of the delegates. 





23. (Currently amended) A system comprising: 

a server to verify digital credential/s by a user of a 
digital credential at any of a plurality of different locations 
where the digital credential can be u^fed ; a*id 

an activity log coupled to the /server to store results from 
the verification in a central lo cgfcion that communicates with 
each of said plurality of diffe/ent locations; and 

a communication part, allowing specified users to access 
said results. 



24. (Original) The/system of claim 23 , wherein the activity 
log is configured to ^tore transaction information for each 
authentication reaul 

25, (Original) The system of claim 24, wherein the 
transaction information includes at least one of a digitally 
signed message, a date of the transaction, a value of the 
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transaction, an online service requesting the authentication, an 
internet protocol (IP) address, a value of the . transacti/on, and 
a time of the transaction. / 

26. (Currently amended) The system of clain/23, and 
further comprising an owner database to store information of an 
owner of the digital credential and owner -approved delegates and 
wherein said communication element allows isaid owner to view all 
reports, but allows each said delegate tp view only their own 
report, and not reports for other delegates . 

27. (Currently amended) An a/ticle comprising a computer- 
readable medium having data structures stored thereon 
comprising: / 

a first data field to stsore a result from an verification 
of a digital credential by /a user of a digital credential at any 
of a plurality of different locations where the digital 
credential can be used / and 

a plurality of dtata fields to store transaction information 
relating to each verification result in a central location that 
communicates wit}/ each of said plurality of different locations; 
and / 

a data jaccess structure, allowing specified users to access 
said results . 

J 8 
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28, (Original) The artic 
plurality of data fields stor<^ 
signed message , a date of the 
transaction, a value of the 
internet protocol (IP) addres 
the transaction, and goods or 
transaction. 



e of claim 2 7 , whereirr the 

at least one of a/digitally 
transaction, a tame of the 
transact ion, ar/ online service, an 
of a computing device originating 
servicers involved in the 




29- (Original) The artic 
tructures further include 
owner and delegate inf orjrfatiori 



e of claim 27, wherein the data 
plurality of data fields to store 



30 • (Currently /amended) 
receiving information des 
credential; 

storing /fche use informati 
generating an activity 
wherein said communication el 



reportjs, but allows each said 



report, and not reports for other delegates. 



A method comprising: 
cribing a use of a digital 



ion 



in an activity log; and 
based on activity log and 
elment allows said owner to view all 



report 



delegate to view only their own 
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31. (Original) The method of claim 30, wherein the/use 
information includes transaction information. 

32. (Original) The method of claim 30, wherein the use 
information includes verification information /for the digital 
credential . 

33. (Original) The method of claitr/31, wherein the 
transaction information includes at l/4ast one of a message that 
was signed, a transaction value, anr online service, an internet 
protocol (IP) address, a value of the transaction, a date of the 
transaction and a the time of iihe transaction. 

34. (Original) The method of claim 3 0 , wherein the digital 
credential includes a digital signature key, and further wherein 
generating the activitfy report includes associating a name to 
the digital signature key and listing the name of the digital 
signature key. 



35. (Original) The method of claim 30, wherein generating 
the activity report includes generating the activity report upon 
request -by an owner of the digital credential . 
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36. (Original) The method of claim 30, wherein generating 
the activity report includes generating the activity report each 
time the digital credential is verified. 

37. (Original) The method of claim 30, wherein generating 
the activity, report includes generating a rep6rt periodically. 




38. (Original) The method of claim Ao further including 
analyzing the activity log to detect rpdsuse of the digital 

H credential. 

39. (Currently amended) The method of claim 35, wherein 
generating the activity report includes listing activity for a 
plurality of digital signature keys associated with the owner 
and wherein said allowli^g comprises allowing said user to view 
all reports, but alloying each said delegate to view only their 
own activity report/ and not allowing each said delegate to view 
reports for other/delegates . 



40. (Cur/ently amended) The method of claim 3 0 further 
comprising: 

authorizing one or more delegates to use a delegated 
digital /credential to act on behalf of the owner of the digital 
credential for specified functions, wherein verifying the use of 
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the digital credential includes determining whether ttoe 
delegated digital credential was authorized for thfe specific use 
and wherein said allowing comprises allowing sa/d user to view 
all reports, but allowing each said delegate /to view only their 
own activity report, and not allowing each/said delegate to view 
reports for other delegates > 




41. (Original) The method of c^aim 30, wherein generating 
an activity report includes activ/ty reports of the delegates of 
the user. 

42. (Currently amended) A method comprising: 
storing use information for a digital credential of a 

plurality of delegates/who are delegated to use said digital 
credential by an own^r user ; 

processing th£ use information for each of said plurality 
of delegates to idetect misuse; and 

generating an alert to the owner when misuse is detected. 



43, ^Original) The method of claim 42, wherein generating 
an alert^ includes generating an activity report based on the use 
information . 
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44. (Original) The method of claim 42, wherein generating 
an alert includes alerting a credential service provide] 




45. (Currently amended) The method of claim 4/2, wherein 
the use information includes transaction information and wherein 
said allowing comprises allowing said user to /View al l reports; 
but allowing each said delegate to view onlV their own activity 
report; and not allowing each said delegate to view reports for 
other delegates . 



46. (Original) The method of claim 42, wherein the use 
information includes verif ication/inf ormation for the digital 
credential . 

47. (Original) The method of claim 45, wherein the 
transaction information /ncludes at least one of a message that 
was signed, a transaction value, an online service, an internet 
protocol (IP) address , a value of the transaction, a date of the 
transaction and a/the time of the transaction. 



48. (Cu/rently amended) A method comprising: 
recei/ing transaction requests from a plurality of delegate 
users w h/b are delegated from an owner , wherein the transaction 
reques/s include digital credentials for the delegate users; 
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processing the transaction requests; and 

communicating transaction information to a central service/ 
wherein the transaction information includes the digital 
credentials of the delegate, and wherein saija allowing comprises 
allowing said user to view all reports, hyt allowing each said 
to view only their own activity report, /and not allowing each 
said delegate to view reports for oth£r delegates users . 



49. (Original) The method ol claim 48, wherein processing 
the transaction requests Includes communicating the digital 
credentials to the central service for verification. 

^ 50* (Original) The /method of claim 48, wherein processing 

the requested transaction includes: 

verifying the digital credential; and 
communicating a result of the verification to the credential 
service , 




51. (Original) The method of claim 48 further including 
receiving^ a activity report from the central service, wherein 
the activity report lists the transaction information for each 
digital credential . 



Received from < > at 3/24103 5:53:41 PM [Eastern Standard Time] 



14 



03/24/2003 14:55 FAX 



1016/021 



Attorney's Docket No . : 10559/225QOl/P8790/Intel Coloration 

52. (Original) The method of claim 48, wherein tl 
transaction information includes at least one of a nfessage that 
was signed, a transaction value, an online service, an internet 
protocol (IP) address, a value of the transaction, a date of the 
transaction and a the time of the transact: 




53. (Currently amended) A method Comprising : 

receiving a request from a medical professional to access 

medical information at a remote location , wherein the request 

includes a digital credential toj the medical professional ; 

communicating transaction/information describing the access 

request and the digital credential to a credential verification 

service; 

^ receiving a verification result from the credential 

verification service ; 

providing the radical professional access to the medical 
information based/on the verification result; and 

receiving yan activity report from the credential 
verification /Service, wherein the activity report list the 
transaction/ information, the digital credential and the 
transacti/on result. 
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54, (Original) The method of claim 53, wherein the 
transaction information includes at least ap/ access type, a date 
of the transaction and a time of the transaction. 




55. (Original) The method ^jzfx claim 53, further wherein the 
digital credential was provided by a credential issuing service 
and a credential servic^ provider, 



56. (Origir^Q) The method of claim 53, and further 
including: 

receiving a request to access the activity report from an 
owner/f the digital credential; and 

providing the owner access to the activity report. 
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